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1 . Wireless commmiicatiow device equipped with a means that acquires the device 
identification infomiatioa of another wireless comtnmiication device in response to acoaaection 
request from said otlier wireless commimkatioii device aiid generates authentication 
identjficattoD infbmiation, a means that generates the email address of said other wireless 
commmncatton device based on said acquired device identification infpnnation, and a means 
that transmits an email including said authentication identifiGation infomiatioa to said other 
wireless commanication device by nsmg said email address. 

2. Wireless communication device described in Claim 1 , characterized by also having a 
means that generates encrypted information based on at least an encryption key and said 
authentication identification information upon receiving said encryption key from said other 
wireless comnmnication device after said email has been sent and a means that wirelessly 
transmits said encrypted infomsation to said other wireless commimication device, 

3. Wireless commanication device described in Claim 2, characterized by the fact that if 
the encr>'ption key is not received firom said other wireless conmiunication device within a 
prescribed period of time after said email has been sent, the transmission of said encrypted 
information is stopped by the means that sends said encrypted infonnation, 

4. Wireless communication device described in any of Claims 1.-3, chai acterized by the 
fact that the means that generates said email address exteacts at least pait of tlie aforementioned 
acquired device identification information and uses that information as the email address, 

5. Wireless communication device described in any of Claims 1-3, characterized by the 
fact that the device also has a management table showing the corresponding relationship between 
said device identification information and said emaii address, and the means that generates said 
email address generates the email address from said device identification information with 
reference to said management table, 

6. Wireless communication device equipped with a means that requests a connection to 
another wireless conmiunication device, a means that wirelessly sends its own device 
identification information to said other wireless communication device, a means that generates 
an encryption j<ey upon receiving an email including the authentication jdentifieation 
information from said other wireless communicaiion device af^er said device identifieation 
information has been sent, and a means that wirelessly sends said encryption key to said otlier 
wireless commanication device. 

7. Wireless communication device described in Claim 6, characterized by also having a 
means that generates encrypted information based on at least said encrj'ption key and said 
authentication identitlcation information and a means tfiat compares said generated encrypted 
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mformation with saii! received encrypted infommticm upon recemng the encrypted mfonnation 
from said other wireless device. 

8. Wireless conittiuatication system comprised ofaiiauthewticatioa master and mi 
authentication slave, wherein the coanection between the authentication niaster and the 
authentication slave is established under the condition that the encr>|jtetl infoniiatipn is 
generated based oi> at least an encryptiot) key and axttliestication identification infbrtnation, 
characterized by the fact tliat said encr>'ption key is generated in said autlieatication master and 
is sent wirelessly to said authentication slave, and said authentication identification information 
is generated in said authentication slave and is sent by an email to said authentication master. 

9. Wireless communication system described in Claim 8, characterized by the fact that 
the encryption key is sent to said authentication slave by said autlientication master upon 
receiving said email sent from said authentication slave, 

10. Connection authentication method used for establishing a wireless connection 
between an authentication master and an authentication siave and having the following steps: 
device identification information is exchanged between said authentication master and 
authentication slave; said authentication slave generates authentication identification 
information; said authentication slaye generates an email address based on said device 
identification information of said authentication master; said authentication slave «ses said email 
address to send an email including said authentication identification infonnation to said 
authentication master; said autlientication master generates an encryption key upon receiving 
said email; said authentication master ^^irelessly sends said encryption key to said aiithemication 
slave; said authentication master and said authentication slave generate encrypted information 
based on at least said encrs'ption key and said authentication identification information, and the 
encrypted information generated by said authentication master is compared with the encrypted 
information generated by said authentication slave. 

1 1 . Connection authentication method described in Claim 10, characterized by the fact 
that said exchange step includes the following sub-steps; said authentication master requests said 
authentication slave to send device identification infomiation; said authentication slave sends its 
own device identification information to said authentication master in response to said request; 
said authentication master sends a connection request to said autbentieaiion slave upon receiving 
the device identification information of said authentication slave; said authentieatioh slave 
requests said authentication master to send device identification infomiation in response to said 
connection request; in response, said authentication master sends its own device identification 
infonnation to said authentication slave. 
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[0001] 

Technical field of the invention 

The present invention pertains to a wireless conmiiinicatJQn device, a vvifeless 
communication systern, and a connection authentication method. More speciilcally, tlie present 
invention p^'tains to a wimiess eomiiiutttcatton de\%e, wireless coninianication method, and a 
connection authentication tssethod wttit improved convenience for the nser regarding the 
connection between the authentication master and antlientication slave, 

[0002] 
Prior art 

In recent years, wireless communication systems based on the Bluetooth protocoi have 
attracted a lot of attention as wireless communication systems over short distances. The 
Bluetooth protocol is an authentication communication protocol and is used at very close ranges. 
It can set up a low-cost, high-speed wireless communications environment. A frequency of about 
2.4 GHz is used for wireless communications based on the Bluetooth protocol, and its radio 
wave connection range is about 10-100 m. 

[0003] 

At least two Bluetooth terminals are connected to each other via wireless communication 
based on the Bluetooth protocol. A prescribed authentieation process is carried out during a 
connection process. In this case, the BlueCxsoth tenninal on the side issuing a connection request 
is known as the "authentication master," while the Bluetooth terminal on the side receiving tlie 
connection request is known as the "audientication slave." 

[0004] 

Figure 6 is a block diagmm schematically illustrating die C{3n%tiration of a conveiitional 
Bluetooth terminal. 

[0005] 

As shown in Figure 6, the Bluetooth terminal acting as the authentication master and the 
Bluetooth terminal acting as the authentication slave have the same constituent elements. Both of 
the Bluetooth terminals have an antenna AT with weak orientation u-icd tor 
transmiSvSion/reception. Each terminal has a device controller ((TL) I thai performs \ 
conti'ols of the device, a baseband link controller 2 that performs link cinitri*! ibr baseband RV 
unit 3 thatperfonns control during transmission/reception in the RF {radio frequenc\ } roini;c. Ci 
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memoty 4 storiiftg the PIN (personal identification uiforniation) infomiation needed for the 
authentication procedure, a Hnk key generator 5 that generates a link key for encr>pdon, a 
program memory 6 that stores the program to execute by CPU 1 , a random nuitiber generator 7 
that generates a random number, an encryption unit S that performs encryption, and a PIN inpnt 
unit 9 used by the user to enter the PIN information, 

[00063 

In this case, the PIN information includes mmibers, symbols, characters, and the like. It is 
used as a kind of password for determining in the authentication slave whether the Bluetooth 
terminal requesting connection (authentication inaster) is a Bluetooth tenninai with connection 
permission. 

[0007] 

In the following, the process from the terminal selection to the actual connection using 
tlie conventional Bluetooth terminal will be explained. 

[00083 

Figure 7 is a flow chart illustrating the process from the tenninai selection to the actual 
connection using the conventional Biuetootlvtermiiiaj. 

[0009] 

As shown in Figure 7, first, the authentication master requests the authentication slave to 
send the device name (SI). In this case, the device name is any name assigned to a specific 
Bluetooth terminal It plays an auxiliary role for the ID or Bluetooth address of each Biuetootij 
temrinaL Upon receiraig the request, the authentication slave sends its own device name to the 
authentication master (S2). The authentication master receives the device name (S3). In this case, 
if there is a pluralit>' of authentication slaves requested to send device names, the authentication 
master will receive a device naine from each of the authentication slaves. 

[00103 

Then, the authenticatiofn master selects one of them as the comiectlon target based oh the 
device name received from the authentication slave (S4), When the selection of the connection 
target is completed, ai authentication process is carried out between the authentication master 
and the selected authentication slave (S5). If the authentication is successful in this process, the 
connection between these two terminals is established. If the authentication fails, the two 
temtinals are disconnected. 
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[0011 J 

Figiye 8 is a flow chart illustradag the contents in the conyetttioiml authentication 

process (S5). 

[0012J 

As shown in Figure 8, in the authentication process (S5), first, tlie antlienticatiott master 
starts the random number generator 7 to generate a random number and sends it to an 
authentication sla ve for which the random number is selected (S6). At>er that, when the itser 
enters the FIN information via PIN input unit 9, a link key is generated by a prescribed algorithm 
based on the aforementioned random number and the entered PIN information (S7), and the 
generated iink key is encr>'pted (SS). hi this case, the PIN information tliat should be entered by 
the user is the same as the POM information stored in the memory 4 of the authentication slave. If 
PIN infonnation that is different from the PIN information stored in the memory is entered, the 
autlientication will fail as to be explained below. 

[00133 

On the other hand, upon recei\'ing the aforementioned random nujuber (S9), the 
authentication slave reads out the PIN information stored in memory 4 and getierates a link key 
by a prescribed algorithm based on the received random number and the read PIN information 
(SIO). Then, the authentication slave encrypts the generated link key (SI i) and sends the 
encrypted link key to the authentication master (SI 2). 

[0014] 

Upon receiving the encrypted link key from the authentication slave (S 1 3), the 
authentication master compares the encrypted link key generated in the authentication master and 
the received encrypted link key (S14X If the comparison result shows that tlte two Hnk keys are 
the same, the authentication process (S5) is ended as a successful authentication (SI 5). If the two 
link keys are different from each other, the authentication process |SS) is ended as a failed 
authentication (Si 6). 

[0015] 

If tlie authentication is successful (S I5) in the authentication process (SS), a connection is 
established between the authentication master and the authentication slave. If the authentication 
fails (S16), the two terminals are disconnected. 
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[0016] 

Problem to be solved by the mvewtion 

111 the aforementiotted conventional authentication process (S5X however, since the user 
must enter the PIN infomiation frora the side of the Bhietooth terminai acting as the 
aathenttcatiou master, it is eoraplicated to establish a cpftjiection between the mrtheBtieation 
master and the aathentication slave. In partieular, if the Btoetooth termittal acting as the 
authentication slave is a stnaM terminal, such as a cellular phone-j it is very difficult to enter FIN 
infomiation composed of numbei"Sj symbols, characterSj and the like. This adversely affects the 
convenience for the user, 

[0017] 

This problem occurs not only when establishing a connection between the 
aforementioned Bluetooth terminals but also when establishing a connection between various 
kinds of wireless commmiication terminals that are connected to each other by confirming the 
agreement between PIN infomiation or similar information. 

[0018] 

Conseqaently, the objective of the present inventipn is to provide a wireless 
communication device, a wireless communieation system, and a connection authentication 
metiiod widi improved convenience for the user regarding the connection between the 
authentication master and authentication slave. 

[0019] 

Means to solve the problem 

In order to realizie the aforementioned objective, the present invention provides a wireless 
cormnunication device equipped with a means that acquires the device identification informafcion 
of another wireless commmiicatioo device in response to a comiection request from said otiier 
wireless communication device and generates auftientication identification information, a means 
that generates the email address of said other wireless communication device based on said 
acquired device identification information, and a means that transmits an email including said 
aiithentication identiftcation irifonnation to said other wireless eommnnication device by using 
said emaii address. 

[0020] 

According to the presetu isn eiuion. since the authentication identiUcaiion information is 
generated internally and is sent by email, said other wireless communication device can share the 
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aiitherttication identificatioii mfboTiation^^b^^^ tiie email. Goiisequemly, tJ^ei"'^^ is no need 

for the user to errter the authervlicalion ideoiMcatTon information, which crni knprove 
coaveaience. Also, since the authentication identifjcation ittfontiatioii is shared via email, an 
imaiithorized connection to a third par^ who is not associated with the device identification 
infomiation and the eHiail address can be prevented so that security can also he impFowd, 

[00213 

hi a preferable embodiment of the present inventioB j the wireless communication device 
also has a means that generates encrypted information based on at least an encryprion key and 
said authentication identification information upon receiving said enciyplion key from said other 
wireless communication device after said emaii has been sent ajid a means that wirelessiy 
transmits said encrypted information to said other wireless comniunication device. 

[0022] 

In another preferable embodiment of the present invention, if the encfyptiGn key is not 
received from said other wireless conimuaicatioa device witbin a preseribed period of time after 
said eiTiail has been sent, the transmission of said encr^pt^xl information is stopped by thenieans 
tliat sends said encrypted information. 

[0023] 

According to yet another preferable ernbodirnent of the present invention, even if a third 
parly accesses the authentication identification intbrmation improperly, it is very difficult to use 
the authentication identification infonuation to establish the actual connection so that the security 
can be farther improved, 

[0024] 

In yet another preferable embodiment of die present invention, siaid email address 
extracts at least part of the aforeitienttoned acquired device identification information and uses 
that infommtion as the email address. 

[0025] 

In yet another preferable embodiment of the present invention, the device also has a 
management table showing the corresponding reiationship between said device identification 
infonnation and said email address, and the means thai generates said email address generates 
the email address from said device identification information with reference to said management 
table. 
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[0026] 

Accofdiag to yet another preferable embodmieat of the present inveatioa, an 
imaiithorized connection established by a third pmy who does not have the maaageraent tabJe 
can be prevented more effectiveiy so that security can be furflier iinproved, 

[00273 

hi order to realize tiie aforementioned objective^ the present invention also provides a 
wireless commiraication device equipped with a tneans that requests a conneefipn to another 
wireless communLication device, a means that wtrelessly sends its own device identiticaiion 
information to said other wireless communication device, a means tliat generates an encryption 
key upon receiving an email including tlie authentication identification information from said 
other wireless communication device after said dev ice identification information has been sent, 
and a means that wirelessly sends said encryption key to said other wireless communication 
device. 

[0028] 

According to the present invention, since the authentication identifiGatipn infonnation is 
received via email, diere is no need for the user to enter the att^ientication identification 
information, which can improve the convenience. 

[0029] 

In a preferable embodiment of the present invention, tlie atorementioned wireless 
communication device also has a means that generates encrypted information based on at least 
said encryption key and said authentication identification information and a means that compares 
said geneitited encrypted information with said received encrypted infonnation upon receiving 
the encrypted information from said other wireless device. 

[0030] 

h> order to i^alize the aforen^entioned objective, the present invention also provides a 
wireless communication system comprised of an authentieation master ai>d an authentication 
slave, wherein the connection between the authentication master and the authentication slave is 
established under the condition that the encrypted information is generated based on at least an 
encryption key and authentication identification information, characterized by the fact that said 
encn'ption key is generated in said authentication master and is sent wirelessly to said 



11 



autht'rttication slave, and said aiTtheBtt sdeivtification mfbmiation is g«?Berated in sakl 
authentication slave and is sent by an email to satd authentication master. 

[0031] 

According to the pi^sent iaveation, when the authentication identification infbrrimtion is 
generated in the authentication slave at)d is sent by eniail to the anthentication servetv since the 
authentication identification inforniatioa is shared bet^^'een die authentiGation master and die 
authentication slave, tliere is no need for the user to enter the authentication identification 
information so that the convenience can be improved, 

[0032] 

In a preferable embodiment of the present invention, die encryption key is sent to said 
authentication slave by said authentication master upon recei\%g said email sent &om said 
authentication slave. 

[0033] 

In order to realizs; the aforementioned objectives the present invention also provides a 
connection autlienticatiGn method used for establishing a wireless connection between an 
authentication master and an autheflticatton slave and having the following steps: device 
identification information is exchanged between said authentication master and authentication 
slave; said authentication slave generates authentication identification information; said 
authentication slave generates an email address based on said device identification information 
of said authentication master; said authentication slave uses said email address to send an email 
including said authentication identification information to said authentication master; said 
authentication master generates an encrv'ption key upon receiving said email; said authentication 
master wirelessly sends said encryption key to said authentication slave; said authentication 
master and said authentication slave generate encrypted information based on at least said 
eftcr>'ption key and said authentication identification information, and the encrypted information 
generated by said authentication master is compared with the encrypted inibrmation generated by 
said authentication slave. 

[0034] 

In a preferable embodiment of the present invention, the aforementioned exchange step 
includes the following sub-steps: said authentication master requests said authentication slave to 
send device identitl cation information; said authentication slave sends its own device 
identification information to said authentication master in response to said request; said 
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autht'rtticatidn master sends a connection request to said authentieation slave upon receiving the 
devi ce identification intbrmatiow of said authentication slave; said autlientication slave requests 
said autheatication master to setid device identification infommtion in response to said 
connection request; in response, said authentication master sends its own device identification 
infoiiftation to said authenticatiGn slave. 

[00353 

Embodiment of the invention 

In the following, the preferable embodiments of the present inyentiOii will be explained in 
detail with reference to the attached figures, 

[0036] 

Figure 1 is a block diagfam illustrating the eoBfiguration of the wireless commnnication 
device 10 in a preferable embodiment of die present invention. In this embodiment, tJhe wireless 
conmiunication device 10 is a Bluetooth terminal. Its constituent elements are represented by the 
same symbols used for the aforementioned conventional Bluetooth terminal. 

[0037] 

As shown in Figure 1 , the Bluetooth terminal 10 acting as the authentieation master and 
the Bluetooth terminal 10 acting as the authentication slave have the same constituent elements. 
Both of the Bluetooth temsinals 10 have an antenna AT with weak orientation used for 
transmission/reception. Each terminal has a device controller (CPU) 1 that performs various 
controls of the device, a baseband link controller 2 that performs link control for baseband, RF 
unit 3 that peifomis control during transmission/reception in the RF (radio frequency) range, a 
link key generator 5 that generates a link key tor encryption, a program raemor}? 6 used for 
storing the program executed by C'PIJ 1, a random number generator 7 tliat generates a random 
number as the encryption key, atr encr>'ption unit 8 that performs encryption, a public line 
interface 1 1 connected to a public line, an email generation controller 12 that generates an email 
to send via public line interface 1 1, an email reception controller 13 that receives tbe email sent 
\m public line interface IL a PIN generator 14 tiiatautomatieaily generates PfN intonnation as 
the authentication identification information, a PIN extraction unit 15 that extracts the PIN 
infomiation from the main text of the received email, and a timer 16, 

[0038] 

Aldiough both the Bluetooth terminal 1 0 acting as the authentication master and the 
Bhietooth temiiaal 10 acting as the authentication slave each have the aforementioned 
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cottstitxiem elements, it is not reqiured that stll of tlie constituent elenieiKs in the Bluetooth 
temnnal 10 actmg as the authentication master be exactly the same as those hi tlie Bluetootli 
terminal 10 acting as the authentication slave. Therefore, they may have different constituent 
elements. Also, each of the aforementioned constituent elements has the same function in the 
Bluetooth terminal 10 acting as the authenticatioiT master and the Bluetooth terntinal 10 acting as 
the authentication slave. They are not, hovv^ver, required to have the saine hardware. Therefore, 
it is not required that each of the aforementioned constituent elements have iudepeodent 
hai'dware. It is possible to realize one or more constituent elements in softv^'aie by execoting 
programs in the CPU i . 

[0039] 

In tlie following, the process from the selection of the terminal to the aGtual connection 
will be explained nsing the Bluetooth terminals 10 in the aforementioned embodiment, 

[0040] 

Figure d is a 0ow chart illustrating the process from the sel^tion of the terminal to the 
actual connection using the Bluetooth temiinals 10 in the afbrementioned embodiment. 

[0041] 

As shown in Figure 2, first, the authentication master requests the authentication slave to 
send its device name as the device identification information ($20X In this case, the device name 
is a name assigned to each Bluetooth terminal. It plays an auxiliary role for the ID or Bluetooth, 
address of each Bluetooth terminal. In this embodiment, the de vice name of each Bluetooth 
terminal 10 is consistent with the email address of the corresponding Bluetooth temiinal 10. 
Upon recei-ving the request, the aiithentication slave sends its own device name, that is, the email 
address to authentication master (S2I), and the authentication master receives the device name 
(S22). In this case, if there is a plurali ty of autlientication slaves requested to send the device 
name, the authentication master will receive the device name from each of the multiple 
authentieation slaves. 

[00423 

Then, the authentication master selects one of them as the connec ti on target based on the 
user's instructions by using the device name received fiom the authentication slave (S23). When 
the Meleciion of the connection taiget is completed, the authentication master sends a connection 
iequcst to the authentication slave selected as the coimection target (S24). Upon receiving the 
tcqiicst < S^'^ }, the selected autlientication slave requests the authentication master to send the 
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device mnn (S26). Upon recemng that request, the authentication master seiuis its own device 
name, thai is, the etnail address to the authentication siave (S27). The authenticatioiT slave 
receives the device name {S28). 

[0043] 

I« tfeis way, the exchange of the device natne, that js, the etnail address between the 
authentication master and tlie autlientication slave is completed. When the exchange of the 
device name betw^een the authentication master and the authentication slave is completed this 
way, an authentication process is carried out between the aiithemication master and the 
authentication slave (S29). If the authentication is successful in this anthentication process, a 
connection is established between the two terminals. If the authentication fails, the two terminals 
will be disconnected. 

[0044] 

Figure 3 is a flow chart iHustrating the contents of the authentication process (S29) in this 
embodiment, 

[0045] 

As shown in Figure 3, in the authentication pjTocess (S29), first, the authentication slave 
starts PIN generator 14 to generate PIN information (S30), In this case, the PIN information to be 
generated can be any information including numbers, symbols, characters, and the like. Also, 
when the FIN information is generated, timer 16 is turned on to start timing. 

[0046] 

Then, the authentication slave starts the email generation controller 12 to generate the 
email addiess of the authenticadon master based on the device name received from the 
authentication master in step S28 (S31). In this embodiment, since the email address of the 
authentication master is consistent with the device name of the authentication master, the email 
generation controller 12 recognizes the device name as the email address of the authentication 
master. Also, the authentication slave generates the main text of the email in a prescribed format 
including the aforementioned generated PIN inforniation by email generation controller 12 
(S32). 

[0047] 

Figure 4 is a diagram iUustrating an example of the email main text generated by email 
generation controller 12. 
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[0048] 

Then, the authentication slave sends the generated email to the aiitheMication master via 
public line interface 1 1 . In this case, the email addre$s of the recei ver is the email adskess of the 
authenticatitm master. IXiring that period, the authentication master is in a state waiting for the 
arrival of the etnail 

[0049] 

Then, \vhen the email sent from the anihentication stave is recei ved by the aiithentication 
master (S34), the atithenlication master staits ¥\E extraction unit 15 to extraci the PIN 
information from the main text of the received email (S35). In this way, the authentication 
master and the amhentication slave share the common PIN information via emaii, 

[0050] 

Then, tlie autlientication master starts random number generator 7 to generate a random 
number as a cipher code and sends it to the authentication slave for which said random number is 
selected (S36). Then, link key generator 5 is started to generate a link key by a prescribed 
algorithm based on tiie aforementioned mndom nntnber md the extracted PIN infonimtion (S37), 
and the generated link key is encrypted (S38 ). In tlie specification of the present invention, the 
encrypted luik key is known as "encrypted information." In this case, the link key is encr>'pted by 
331 aigorithiti that is different from the aforementioned algorithm based on the link key and the 
Bluetooth address of the authentication master. Also, the Bluetooth address is an identifier 
provided to each Bluetooth device. It is shared between the authentication master and the 
authentication slave in the stage before tlte authentication process (S29) is carried out 

[0051] 

During that period, the autlientication slave is waiting to receive the random number from 
t he anthentication master. If the time counted by timer 16 exceeds a prescribed value, the C PU 1 
in the aothentication slave will cancel the waiting state and forcibly end the authentication 
process (S29) as a failed authentication, in this case, the afbremention^ prescribed value is set 
in consideration of tlie time needed for the arrival of the email. It is preferred to set it to about 1- 
2 min. If it is set too short, a slight delay in tlie arrival of the email will result in a failed 
authentication, which will adversely afiect the convenience. If the time is set too long, security' 
problems tend to occur. 



16 



[0052] 

Chi the other hand, if the auihentication sla ve receives the aforementiotted random 
mmibei befoie the tune counted b'v tunei Ift exceeds the aforementioned piLScrb.d ^alue (S3Q), 
the authentication s{a\e starts Imk lve\ gciiciator ^ to ireneiate a ht^k kc\ h\ a pie';*,nbed 
rfUo! thni l\i ed on the received random number and the Pl\ nifonnjtton t:i.'npi<itcd b\ PI\ 
genesaTo' i4 {S40) Ihi. authentication sla\ c also statK encnption unit 8 to encivft ihe gcneiaied 
hnk kev (S4i ) and sends ihe ejKf \ pttd iuiK ke> to tlie authentication master (S42> As desctibed 
above, tiie link kev i^ cncrsptcd bv an algciritlim diffeient from the aforementioned algoiithm 
based on t!ie link key and the Bluetooth address ot the amtientication master, 

[0053] 

Upon receiving the encr>'pted Imk key from the authentication slav-e (543)^ tiie 
authentication master compares the encrypted link key generated in the airthenticatjon tBaster 
with the received encrypted hnk key (S44). If tiie cornparisoti result shows that the two link keys 
are the same, the authentication process (S29) is ended as a successful autltentication (S45). If 
tlie two link keys are different from each other, the authentication process (S29) is ended as a 
failed authentication ($46). 

[0054] 

If die authentication is successful (S45) in the autherttieation process (S29), a eoiinectidn 
is established between the authentication master and the authentication slave. If the 
auihentication fails (S46), the two terminals are discotmected. 

[0055] 

As described above, according to this embodiment, since the PIN information is 
generated automatically in the authentication slave and is sent by email to the authentication 
master, there is no need for the user to enter the PIN information in order to establish the 
connection. The convenience can be improved. Also^ since the authentication master and the 
aathentieatioti slave share the PIN information via email, an unauthorized connection to a third 
party who is not associated with the device identitication infomiation and the email address 
(consistent in this embodiment) can be prevented so that security can aiiso be improved. 

[0056] 

Abo, according to this embodiment^ since the timer 16 is used to restrict the time from 
generation of P IN (S30) to reception of the random number (S39), the authen tication process 
(S29) can be ended automatically when die PIN information cannot be shared due to non-arrival 
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of the email. Also, even if a third paity accesses the PIN in fbrmatioB improperly, if is veiy 
diBicalt to use that infonnation to establish ati actual connection so that security can be forther 
improved. 

[0057] 

I« tlie foliowi«g, another preferable embodiment of the present invention wiU be 
explained. 

[0058] 

Figure 5 is a block diagram illustrating the configiiration of tire wireless commimication 
device 20 in the said other preferable embodiment of the present invention, in this embodiment, 
the wireless communication device 20 is also a Bluetooth terminal, 

[0059] 

As shown in Figure 5, the difference in the Bluetdoth terminal 20 in this embodiment is 
tliat memory 4 is added to Bluetooth terminal 10 in the aforementioned embodiment Memory 4 
is a nonvoiatiie memory that can be written eleetneally, such as EEPROM, In this embodiment, 
if it is required that tlie device nan^e be consistent witli the email address, a rnanagement table 
indicating the correspondiiig relationslup between the device name of each B luetooth terminai 20 
and tiie email address of the corresponding Bluetooth terminai is pre-stored in said memory 4, 
Consequently, it is necessary to register the device name and email address of a Bluetooth 
tenninal 20 expected to be connected in the memory 4 of each Bluetooth terminal 20 to form the 
management table. 

[0060] 

The process of establishing a connection between the au thentication master and the 
authentication slave in this embodiment is the same as tltat in the aforementioned embodiment 
except for the operation in step S31 shown in Figure 3, In this embodiment, in step S3 1, the 
authen tication slave generates the email address of the authentication master with reference to 
the management table stored in memory 4 based on tlie device name received from the 
aiithenticatioii master in step S28. 

[0061] 

As described above, according to this embodiment, the management table showing the 
corresponding relationships between the device name.<; of each Bluetooth terminal 20 and the 
email addresses of those Bluetootli terminal is stored in memory 4, and the authentica tion slave 
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getterates the email address of the aiithentication master with reference to that table. Therefore, 
in addition to the effect realized by the aforementioned embodiment:, an unauthorized coimection 
by a third party who does not have ttiis management table can be e^fectiveiy prevented, 

[0062] 

The preserit irivention is not limited to the aforementioned erftboditnents. Various 
nioditlcations can be made within the range of the present in vention described in the claims and 
they are also inchided within the scope of the present invention. 

[0063] 

For example, the device name and email address of each Bhtetoodi terminal 10 in the 
aforementioned embodiments are consistent with each other. They are not, however, necessarily 
exactly the same. It is also possible for a part of the email address to be consi stent with the 
device name. For example, if the email address of a certain Bluetooth terminai 10 is 
1 23456f(|j.x.xxxx,ne,j p. the device name of that terminai can be 1 23456. In this case, the pait of 
"@xxxxx.ne.jp" should be common for tire Bluetooth terminals 10 expected to be connected. 
The email generation controiler 12 can generate the email address of the authentication master by 
adding "@xxxxx.nejp" to the received device narne "1.23456*' in step S31. 

[0064] 

Similarly, it is also possible to use information formed by varying the email address 
based on a prescribed algorithm as the device name of the Bluetooth terminai 10. in this case, if 
the aforementioned algorithm is shared by Bluetoofti terminals 10 expected to be connected, an 
unauthorized connection by a third party who does not know the algorithm can be prevented 
more effectively, hi this case, email generation controller 12 can generate the email address of 
the authentication master by resinning the email address from the received device name in step 
S31. 

[0065] 

It is also possible to use the telephone number corresponding to tlie email address as the 
device name of Bluetootii terminal 10. In tliis case, entail generation controller 12 cati Obtahi the 
email addi^ss from the email service provider b^ed on the telephone number or send the PIN 
information to the email service provider and can request that the email service provider send an 
email to the authentication master in step S31 . 
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[006§] 

Abo, in each of the embodiments described above, the wheiess communication des^ice is 
the Bluetooth terminal 10 (20). llie device, however, is not Hniited to a Bluetooth terminal as 
long as the connection is estafoHshed by tlie aforementioned procedure. Examples of devices to 
which the presem invention is appHeabte inclnde PC's, PDA's (personal digital assistants), 
workstations, routers, printers, headsets, digital catiieras, hard disk devices, removable disk- 
devices, V TR/'Sj TV's, ac units (air-conditioners), refrigerators, video recording/playback devices 
(tape recorders, IC recorders, and the like), remote controls, automobiles, vending machines, 
microwaves, telephones, and the like, 

[0067] 

In each of the embodiments described above, PIN information is used as the 
authentication identification information. In the present invention, however, the authentication 
identification information is not limited to PIN infonnation. It is also possible to use other 
information as long as it can establish the connection by being shared between the authentication 
master and the authentication slave. 

[0068J 

In each of the embodimeitts descried above, the device name is used as the device 
identification information, in the present invention, however, the device identification 
information is not limited to the device name. It is also possible to use other information as long 
as h can be used to identity each device. 

[0069] 

In each of the embodiments described above, a random number is used as the cipher 
code. In the present invention, the cipher code is not hmited to a imidom number. It is also 
possible to use other information as long as it can be used to encrypt the authentication 
identification information (PIN information). 

[0070] 

In each of the embodiments described above, the enctypted link key is used as the 
encrj'pted information. In the present invention, however, the encrvpted information is not 
limited to tlie link key. It is also possible to use other information as long as it is generated based 
on at least the cipher code {random number) and authentication identification information (PIN 
information). 
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[0071] 

In each of the embodiments described above, the PIN generator 14 is used to generate 
PIN infontjation. It is also possible to generate the iiifomiation by using tlie random number 
generator 7 instead of the PIN generator 14. That is, on the side of the aiithenticatioa master, the 
random number generated by the random number generator 7 is used as the random number to 
send to the autfeenticatioa slave i« step S36. On the side of the atithentication slave, the ra«dom 
number generated by the random number generator 7 is used as the Pibs information to send to 
the autiientication master in step S33, In this case, the PIN generator 14 can be omitted, 

[0072] 

Also, in the present invention, the means does not necessarily mean physical means. It 
includes the case where the fimction of each means is realized by softw^are. It is also possible to 
realize the function of one means by tvvo or more physical means or to realize the fimctions of 
two or more means by one physical means. 

[0073] 

Ef&ets of the in vention 

As explained above, the present invention provides a wireless communication system, a 
wireless communication method, and a connection autiientication method with improved 
convenience for the iiser regarding the connection bet\^'een ilie authentication master and 
authentication slave. 

Brief description of figures 

Figure 1 is a block diagram schematically illustrating the configuration of the Bluetooth 
terminal 10 in a preferable embodiment of the present invention. 

Figure 2 is a flow chart illustrating the process from the selection of the terminal to the 
actual connection lusing the Bluetooth terminals 10 in the aforementioned embodiment. 

Figure 3 is a flow chart illustrating the contents of the authentication process (S29) in a 
preferable embodiment of the present invention 

Figure 4 is a diagram ilfestming an example of the main text of the emai l generated by 
email generation eoi^troller 1 2. 

Figures is a block diagram schematically illustrating the conftguration of the Bluetooth 
terminal 20 in anotlier preferable embodiment of the present invention, 

Figme 6 is a block diagram schematically illusnating the configta ation of a conventional 
Bluetooth terminal. 
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Figure 7 is a flow chart illustnuing the process from the selection of the terminal to the 
acum! connection usiuu the conventional Biuetooih terminal. 

Figure S is a flow chart itlustratiag the contents of the conventionai authentication 

process (S5). 
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